I would like to use ipfilter on a per-system basis. That is, I would like
to use ipfilter on single interface systems to block out packets from that
particular system. Is this possible, or does ipfilter only work for dual
interface firewall/wouter systems?

Also, it looks like ipfilter doesn't actually pick up the rules file at
boot up, but rather turns on ipfilter while also flushing the rules out
of the kernel. Is this correct?

Thanks in advance!
-- 
Rick Kelly  rmk@rmkhome.com  www.rmkhome.com